Social network you want to login/join with:
Lead Product Security Engineer, Basildon
Client: Leonardo
Location: Basildon, United Kingdom
Job Category: Other
EU work permit required: Yes
Job Reference: 791efa3a81ff
Job Views: 6
Posted: 18.06.2025
Expiry Date: 02.08.2025
Job Description:
Job Description:
At Leonardo, we have a fantastic opportunity for a Lead Product Security Engineer to join our team within the Customer Support and Service Solutions (CS3) line of business. CS3 operates across the UK, providing innovative and invaluable support solutions to our customers. We help to ensure the availability of front-line capability wherever and whenever required.
We are looking for an experienced security engineer with expertise in developing and maintaining product security management systems for defence and government customers. The Lead Product Security Engineer will be responsible for all security aspects of product design, development, verification, and maintenance throughout the product lifecycle, including security planning, assessment, risk mitigation, and accreditation activities. The role involves working closely with product development teams to design, implement, and maintain security controls, providing technical advice within product security.
* Work with customer security accreditors and SMEs to ensure product compliance with security policies and manage residual risks.
* Produce Security Management Plans, work package descriptions, and cost estimates for bids and proposals.
* Undertake security risk assessments, create mitigation plans, and prepare accreditation documentation.
* Define security requirements, advise on implementation standards, and oversee development activities.
* Liaise with Security Accreditors and Assurance Coordinators for security accreditation.
* Prepare Protection Profiles, Security Targets, and Evaluation Management Plans, supporting evaluation activities.
* Advise on platform lockdown, configurations, and support penetration testing and remedial actions.
* Manage security throughout product lifecycle, including vulnerability and patch management.
* Lead security incident teams during crises with the Chief Product Security Engineer.
* Support policy review and process improvements, and deliver security training.
* Experience in security solutions for military or commercial products.
* Registered NCSC certified professional or recognized qualification (e.g., ISC CISSP).
* Knowledge of UK/NATO standards, ISO27000, NIST, JSP standards, and guidance from NCSC, CPNI, NIST.
* Experience in Security Accreditation documentation and evaluation techniques.
* Knowledge of cryptography, MBSE, operating systems, firmware, cloud, virtualization, and web security.
* Excellent communication skills and ability to influence stakeholders.
* Positive attitude and motivation skills.
* Experience with Enterprise Security Architectures (SABSA, MODAF).
Security Clearance:
Required.
Life at Leonardo
We offer a comprehensive benefits package, learning and development opportunities, flexible working hours, and a supportive environment focused on diversity and inclusion.
* Flexible working: Hybrid options, part-time possibilities.
* Benefits: Private healthcare, dental, ISA, Go Green Car Scheme, tech and lifestyle allowances.
* Holidays: 25 days plus bank holidays, buy/sell leave, up to 12 flexi days.
* Pension: Up to 15% employer contribution.
* Wellbeing: Employee Assistance Programme, mental health support, diversity networks.
* Lifestyle: Gym discounts, Cycle to work.
* Training: Access to 4000+ courses via Coursera.
* Referral Incentive: Rewards for successful referrals.
* Bonus scheme for employees at management level and below.
#J-18808-Ljbffr